When it comes to a continuous test driven security (CI/CD) pipeline in building cloud centric applications, we help our customers with the 3 phases that signal a “Shift-Left” (or) “Shift-Right” Strategy Model.

• Build phase (Shift-Left)
  
  • Code analysis, Image scanning, hardening etc..
• Ship Phase (Neutral: could go either way)
  
  • Image signing, content trust, user access controls etc.. 
• Run Phase (Shift-Right)
  
  • Preparation Phase: This includes the Access controls, host and kernel security, encryption, orchestration security and networking etc…
  • Production Phase: This includes network inspection and visualization, threat detection, privilege escalation, run-time vulnerability scanning, container quarantine, process monitoring, etc..